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This survey talks about the problem of security and privacy in the 
blockchain ecosystem which is currently a hot issue in the blockchain 
community. The survey intended to study this problem by considering 
different types of attacks in the blockchain network with respect to 
algorithms presented. After a preliminary literature review it seems that 
some focus has been given to study the first use case while, to the best of my 
knowledge, the second use case requires more attention when blockchain is 
applied to study it. The research is also interested in exploring the link 
between these two use cases to study the overall data ownership preserving 
accountable system which will be a novel contribution of this work. 
However, due to the subsequent government mandated secrecy around the 
implementation of data encryption standard (DES), and the distrust of the 
academic community because of this, a movement was spawned that put a 
premium on individual privacy and decentralized control. This movement 
brought together the top minds in encryption and spawned the technology 
we know of as blockchain today. This survey explores the genesis of 
encryption, its early adoption, and the government meddling which 
eventually spawned a movement which gave birth to the ideas behind 
blockchain. 
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1. INTRODUCTION 


Blockchain is at its heart, simply an immutable transaction log, often referred to as a digital ledger, 
which employs cryptographic hashing techniques in a distributed fashion to create a one-way transaction 
register which memorializes the characteristics of an interactions between parties and secures those actions with 
completed proofs of work and a distributed, decentralized, and public log as mentioned in [1]. The research 
proposed in this report may be broadly categorized as a problem related to networked and distributed systems. 
Specifically, the research that will be carried out will contribute to the topics of system design, consensus 
mechanisms, algorithmic efficiency, and machine learning methods powered by network measurement data 
as mentioned in [2]. The research will be borrowing a few concepts and established tools from the fields of 
security and (maybe also from the) game and optimization theories as well. Ideally, to design an efficient system 
that addresses the privacy issues in the existing blockchain-based systems while considering the use case of data 
ownership and provenance in an efficient and more systematic manner as mentioned in [3]. It was originally 
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designed to facilitate commerce on the internet without the need for a trusted intermediary such as a bank or 
a monopolistic computing company like Microsoft or Google overseeing and injecting itself into transactions. 

Blockchain however, due to its robustness, versatility, and security, has been leveraged into a whole 
host of other applications for which trust, privacy, resilience, and security are necessities as mentioned in [4]. 
This survey will explore the distributed ledger technology known as Blockchain. In this survey we will cover 
what Blockchain is, the theories and technologies behind Blockchain, its strengths and shortcomings, as well 
as its current and possible future uses as mentioned in [5]. We will explain the different types of blockchains 
(public, private, and federated), and the pros and cons of each. This paper will conclude with a description of 
an emerging application of blockchain, BigchainDB, which is a NoSQL database augmented with the core 
strengths of blockchain, its decentralized nature, robustness to node failures, and its security as mentioned in [6]. 

This work will also try to facilitate a more systematic approach to study the effective integration of 
laws and policies with the blockchain technology in terms of smart contracts which is currently also a hot topic. 
After a preliminary literature review and following the development of a few blockchain-based projects the 
aspect of privacy by blockchain seems quite important and critical as mentioned in [7]. Privacy by a 
blockchain-based distributed system implies an efficient (in terms of time, storage, and computation) and 
trustful (i.e. in an immutable, transparent, auditable, and decentralized manner) solution to automate an 
application in terms of a contract among different non-trusting parties. Figure 1 shows the security 
requirement triad [8]. Such an automation ideally should have the capability to tackle a logical fallacy such as 
a bug in the code, a malicious activity by an adversary that can often lead to logical and legal ramifications, 
or a conflict among the members of the contract as well mentioned in [8]. 


Availability 


Figure 1. The security requirement triad [8] 


Currently it seems that the way these such hacks were counteracted was by deploying a dedicated 
smart contract. As a result, the whole community was not taken on board during such events thus breaching 
the original idea of immutability and decentralization of the blockchain technology as mentioned in [9]. 
If, however, an efficient governance framework was existed to tackle this type of situation then such a split 
could have been avoided. This motivates me to study the aspect of governance by the blockchain in a more 
systematic manner. Similarly, another important aspect is of the governance of blockchain system itself. 
As an example, Bitcoin Cash was born when debate to upgrade the underlying Bitcoin system to make it 
more scalable arose as mentioned in [10]. This is different from governance by the blockchain as it deals with 
how to upgrade the underlying protocols and mechanisms of the blockchain technology itself. Here the 
vulnerability was in differential cryptanalysis that was discovered by digital currency initiative. 

Reading about this problem there seems to be a severe lack in the standardization of the 
cryptocurrency deployments as mentioned in [11]. Specially in security aspects of things. Take away 
message is that it is a good practice does not use custom cryptographic methods rather use the ones that have 
been in practice and vetted by the community over the years. Given the rapid growth of cryptocurrencies it is 
a daunting task for the community to vet all the code of such a system as mentioned in [12]. There might be a 
silver lining if a framework is developed powered by techniques such as formal verification of code like the 
one privacy uses in its system. The split in Bitcoin that resulted in new currency system called Bitcoin Cash 
was the result of a heated debate to address the scalability issue. In my opinion such a split can be avoided if 
decisions are made in a decentralized manner as well by automating an efficient voting process on top of 
blockchain itself as mentioned in [13]. This governance aspect is envisioned by privacy by introducing the 
concept of formal verification of code. The paper wants to extend this notion to build a more generic 
governance framework for blockchain as mentioned in [14]. Figure 2 shows the strengths of blockchain as 
emerging technology. 
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Figure 2. The strengths of blockchain as emerging technology 


Several organizations are conducting paper on leveraging the blockchain technology, primarily used in 
electronic financial transactions, as the core principle to exchange information between these internet-of-things. 
Companies from various industries like healthcare, electronics, telecommunications, networks, 
transportation, and banking are coming forward to make this idea a reality. It is believed that the blockchain 
technology can be very efficient in exchanging information between devices and companies with minimal 
cost and complexity while maintaining trust, accountability, and transparency. However, the blockchain 
technology used in Bitcoins cannot be directly applied for internet-of-things. Depending on the type of 
company and the information being exchanged, there are many issues that need to be resolved. Following are 
some of them. 

Unique identification for privacy: each device connected to the internet should have a unique 
identifier. This ID is used to track the device in the ledger. Usually, this is achieved by assigning a pair of 
keys (public and private) to each device. However, devices like lights and CCTV cameras might not have 
built-in capacity to manage these cryptography keys. IP address cannot be used for this purpose due to their 
dynamic nature and the presence of private IP addresses. 

Double spending issue resolving: mining and proof-of-work functions are used eliminate the transactions 
involving double spending. This is only useful while transferring assets with monetary value. In other cases, 
involving the transfer of data, the same information from a device can be sent to different devices at any time. But 
there should be some protocol to build a blockchain and append blocks to it in a systematic manner. 

Secure cryptographic computation: the devices in IoT may not have the computational capacity to 
perform complex cryptographic calculations involved in the blockchain model. Since it is estimated that 50 billion 
devices will be connected to the internet by 2022, there should be enough devices online at any point of time, to 
perform these calculations. 

Secure information exchange: while it may be relatively easy to transfer the information and 
maintain a ledger for devices of the same type, IoT will have different types of devices and each device might 
store/process different kinds of information. Maintaining all this information in a single ledger might get 
complex and difficult to manage. Alternatives like sidechain can be utilized to solve this problem. 

Trusting the private devices: more devices mean more risk. Each device might have different 
vulnerabilities and if they are exploited successfully by an attacker, it might lead to a complete takeover of 
the device. Blindly trusting all the devices in the blockchain might be a problem. Although there are many 
other issues and weaknesses surrounding this technology, it is believed that its advantages outweigh these 
issues by a large margin. 


2. BLOCKCHAIN CONSENSUS ALGORITHMS 
2.1. Early cryptography 

In this paragraph will explain a short detail around early cryptography and how the story of early 
cryptography start. Until about the 1970s, cryptography was mainly the purview of state actors. However, 
in the 70s, two publications brought cryptography into the public eye the US government’s data encryption 
standard (DES), the DES, and Whitfield Diffie and Martin Hellmanan’s publication on public key 
cryptography as mentioned in [15]. Figure 3 shows an algorithm of blockchain consensus security [15]. 
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Figure 3. The algorithm of blockchain consensus security [15] 


2.2. Data encryption standard (DES) 

The data encryption standard is a symmetric-key, block cipher algorithm for the electronic data 
encryption first developed at International Business Machines Corporation (IBM), and then submitted as a 
candidate in an invitational study to the National Bureau of Standards, now the National Institute of 
Standards and Technology (NIST), following the agency’s invitation to help define a government wide 
standard encryption algorithm for the protection of sensitive, but unclassified electronic government data as 
mentioned in [16]. IBM’s initial submission was modified to use S-blocks and to decrease the number of bits 
used for the key as suggested by the National Security Agency (NSA) before final ratification of the standard 
as mentioned in [17]. The final design was a symmetric key, 56-bit, block encryption algorithm using S-block, 
or substitution blocks. 


2.3. Symmetric key algorithm 

Symmetric-key or shared-key algorithms like DES are cryptographic algorithms the use the same or 
very mildly transformed keys for encryption decryption of data. The keys enable the possibility of a secure 
communication link between 2 or more parties as mentioned in [18]. The requirement of this type of secure 
channel is that all parties to the communication need to know the secret keys. This fact represents the main 
drawback to symmetric key algorithms as the number of communicating parties increases it becomes 
exceedingly more complex to engineer a secure means of transferring the secret keys before the encrypted 
communication using the keys can begin as mentioned in [19]. Block ciphers, like DES, are cryptographic 
algorithms which deterministically encrypt fixed length groups of bits. In a typical block cipher 
implementation data is split into equal size blocks which are then transformed with a secret key seeding a 
mathematical transformation as mentioned in [20]. 

However, since each block is deterministic and unwavering, block ciphers are susceptible to an 
exploit called differential cryptanalysis in which output blocks are scanned for evidence of non-random 
behavior caused by some repeating value in the plaintext, and that information is used to reverse engineer the 
encryption keys. Substitution blocks, at the time a new feature in cryptography is a cryptographic algorithm 
in which an input of n bits is transformed into an output of m bits, and where n and m are not necessarily 
alike as mentioned in [21]. DES incorporated the first widely used implementation of substitution blocks in 
its 6x4 s-blocks in which 6 input bits were transformed to 4 output bits. S-blocks serve to obfuscate the 
deterministic regularities arising from simple block ciphers thus making them more resistant to differential 
cryptanalysis as mentioned in [22]. 


2.4. Early DES opposition 

During the DES public comment period, parts of the proposed standard were deemed classified, and 
thus could not be vetted by researchers in the field. Also, it was made known that the NIST enlisted the help 
of the NSA in modifying the initial IBM proposal, and that made people a little bit wary. Due to the partially 
classified nature of the publication, the involvement of the NSA, and the introduction of heretofore unknown 
feature in the design called S-boxes, the initial specification was immediately met with wide skepticism in 
the academic realm. Velliangiri and Karthikeyan [23] panned the standard in an “exhaustive cryptanalysis of 
the NBS data encryption standard”. Primarily their concern was that the 56-bit key proposed by the standard 
was too short to be secure as mentioned in [24]. There was also public skepticism that the classified 
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implementation of the S-boxes, now known as substitution boxes, in the design represented some sort of 
backdoor introduced by the NSA to allow it to decrypt secure communications as mentioned in [25]. 

It wasn’t until years later when S-boxes were rediscovered, that it was determined that the inclusion 
of S-boxes in the DES standard made it more secure against differential cryptanalysis. However, the NSA did 
push for a reduction of the key size from the originally proposed 64 bits to 48 bits. IBM pushed back and the 
IBM and the NSA eventually compromised on a 56-bit key. However, this weakened the standard so much, 
according to [26], that state actors and other organizations with deep pockets could theoretically build a 
computer to crack DES encryption through brute force. In [27], an early public shaming of DES they made 
this point in their opening introduction. Fittingly, in 1998, the electronic frontier foundation built a $200,000 
machine, well within the financial means of companies and especially governments, that cracked DES in a few 
days. The project was headed by John Gilmore, a founder of the cypherpunk movement and a cryptographic 
academic and activist as mentioned in [28]. The goal of the project was to demonstrate that DES was insecure, 
and that the US government had been telling deliberate lies about the security of DES for some time. 


2.5. Public key cryptography 

The public key cryptography is used to advocate for an asymmetric encryption algorithm with 
greater complexity of the 56-bit DES and the ability to agree upon a shared key over an unsecure channel. 
This process became known as public key encryption, and they went on to eventually patent this concept as 
given in [29]. The key exchange protocol is what can become to be named. Interestingly though, the concept 
was actually first conceptualized and secretly described in a now unclassified paper in [30]. The private key 
must remain secure, but the public key can be widely disseminated without fear that the encrypted data will 
be compromised. The security of this cryptographic system is hinged on the sheer complexity and time it 
would take to factor the product of the two very large prime keys with current technology. 


2.6. Cypherpunks 

Blockchain technology grew out of the tenants of a group of hightech privacy enthusiasts calling 
themselves cypherpunks. The term cypherpunk is a compound word combining root words cypher or cipher, 
a coded message, and punk, in this instance referencing a member of a rebellious counterculture group 
advocating the widespread use of cryptography to social and political change as mentioned in [31]. 
The cypherpunk movement traces its roots to the early days of public key cryptography. With the initial 
academic uproar surrounding the distrust of the NSA’s involvement in the manipulation of DES, and the 
secrecy in which the implementation of the algorithm was shrouded in, there began the seeds of dissent and 
the onus for the beginnings of the cypherpunk movement. The eerily prescient early focus of the small, 
mostly online group was on discussing individual privacy in a digital world, government monitoring, and 
central authority control of information, all issues which are in national conversation today. The cypherpunk 
group began a meeting of tech-minded individuals with developmental leanings founded by Eric Hughes, 
Tim May, and John Gilmore. These three together with 20 of their friends began meeting regularly in the 
offices of John Gilmore’s company, Cygnus, a stalwart of the burgeoning opensource community, in the 
early 1990s as mentioned in [32]. Their meetup shortly morphed into a mailing list to broaden its appeal and 
to attract likeminded individuals from around the world. One of their primary concerns was that of 
governments and large powerful corporate entities capturing information, as described the problem in a 
speech at the first association for computing machinery (ACM) conference on computers. 


“In most of Europe, phone companies don’t record the phone numbers when you call, and they 
don’t show up on your bill. They only tick off the charges on a meter. Now, I was told that this is 
partly because the Nazis used the call records that they used to have, to track and identify the 
opposition after taking over those countries in World War II. They don't keep those records 


»”» 


anymore. 


The mailing list’s topics and tenor favored privacy in communications, self-revelation, financial 
privacy, anonymity, and pseudonyms. It also derided and actively opposed government data collection, 
forced self-revelation, and censorship as mentioned in [33]. It is notable that an early and very active, 
member of the cypherpunk mailing list was infamy, who has made it his life’s mission to expose corruption 
and abuse of power. However, since each block is deterministic and unwavering, block ciphers are 
susceptible to an exploit called differential cryptanalysis in which output blocks are scanned for evidence of 
non-random behavior caused by some repeating value in the plaintext, and that information is used to reverse 
engineer the encryption keys. Privacy in communication was a primary concern of the movement, but equally 
important to the movement were discussions around financial privacy, as Eric Hughes, one of the founders, 
puts it in his cypherpunk manifesto as given in [34]. 
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“When I purchase a magazine at a store and hand cash to the clerk, there is no need to know who I 
am. When I ask my electronic mail provider to send and receive messages, my provider need not 
know to whom I am speaking or what I am saying or what others are saying to me; my provider only 
need know how to get the message there and how much I owe them in fees. When my identity is 
revealed by the underlying mechanism of the transaction, I have no privacy. I cannot here 
selectively reveal myself; I must always reveal myself.” 


2.7. Directed acyclic graph (DAG) in Bitcoin 

In this section given detail about the DAG in Bitcoin, From this primordial stew of technologist, 
university researchers, cryptographers, a love of privacy in communication and in financial transactions, and a 
general mistrust of central authorities an anonymous, short but groundbreaking paper, was mailed to the 
cypherpunk mailing list in 2008 by Satoshi Nakamoto, fittingly an alias, describing an electronic currency, 
Bitcoin, based upon cryptographic principals akin to asymmetric encryption, one-way functions, but in reverse 
using the DAG as mentioned in [35]. While Bitcoin was not the first digital currency created, it was the first to 
solve the problem of double spending and the first to do it without the need for a central authority regulating the 
transaction. Figure 4 will show the major characteristics of blockchain in terms of transaction [35]. 
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Figure 4. The major characteristics of blockchain in terms of transaction [35] 


2.8. Secure hashing algorithm (SHA) 

Hashing algorithm in blockchain can be considered for the motivation is a simple sign up process on 
securing the application with hashing function. If a user, along the way, does not feel comfortable with the 
type of personal information sharing she agreed on while sign up the only choice that remains with her is to 
re-sign up as mentioned in [36]. The hashing structure is presented as an access control manager. A user’s 
data sits in an off-blockchain storage and permissions related to access of this data by any sort of third parties 
is set by a user by making a transaction to the blockchain. This way the data access information for a piece of 
user data is mined in a distributed and trusted manner in a block of a blockchain as mentioned in [37]. Such as an 
access control system provides long chain for blockchain for the owners of the data to either modify or completely 
revoke the permissions related to their data. These permissions can be modified/revoked in a per-service manner or 
in a collective way (same action that affects permission level of all the services at the same time). 

One extension to the work can be to only return the computation nodes on one’s data and record it 
on top of blockchain as mentioned in [28]. This means third parties are not given access to the raw data of a 
user (which they can store locally for later use) rather only the result of using this data is published and 
recorded on blockchain. This way if a third party tries to behave maliciously the record of this computation 
may be presented in a court of law to prove this behavior. 

A mismatch final output between the record extracted using a blockchain receipt and the 
corresponding provenance data stored in a separate database, then the output can raise an alarm for a possible 
break in [38]. The blockchain can never be attacked the cloud service provider with one application on the 
wallets of users for taking the coins out of it. There should be a system that allows users to control and own 
their data all the time yet at the same time giving third parties a set of permissions to use their data. This set 
should be modifiable on the go with the extreme case of this set being empty, i.e., a user can revoke a 
service/application’s right to access her data at any time she wants. Figure 5 shows the blocks that have been 
created by encryption and Figure 6 shows the secure hash algorithm works on choosing the longest chain 
with hash function [37]. Figure 7 shows the secure hash algorithm works on choosing the longest chain with 
hash function [38] and Figure 8 show an example of secure hashing being performed on text [39]. 


A survey on security and policy aspects of blockchain technology (Haider Hadi Abbas) 


308 


Block 0 


index: 0 
timestamp: 17:15 1/1/2017 


data: *blockOdata® 
hash: Oxea34ad...55 
previous Hash: 0 


Block 1 


index: 1 


timestamp: 17:17 1/4/2017 


data: “block idata” 
hash: O0xf6e1da2..deb 


previousHash: Oxea34ad.°.55 


ISSN: 1693-6930 


Block 2 

index: 2 

timestamp: 17:19 1/4/2017 
data: *block2data” 

hash: 0x9327eb1b..36a21 
previous Hash: 


Oxf6e1da2..deb 


Figure 5. The blocks that have been created by encryption 
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Figure 7. The secure hash algorithm works on choosing the longest chain with hash function 


Hello 
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Figure 8. Example of secure hashing being performed on text 


2.9. Digital signature algorithm (DSA) 
The digital signature algorithm minimizes the attacks that have been carried out on the blockchain 
network with a system that allows malicious users to control and own blockchain data all the time yet at the 
same time giving third parties a set of permissions to use unauthorized blockchain data as mentioned in [40]. 
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Tracking the attacks is a piece of techniques can help detect different anomalies, break ins and data access 
violations thus improving users’ privacy and integrity of data. Blockchain attacks particularly important to 
control in current age of cloud computing where most of users’ data sit in a storage facility of third parties. 
Even if the thirdparty cloud storage providers implement a data provenance system the users still have to 
trust the third parties in their claim that such a system is trustworthy as given in [41]. If, however, we apply 
the blockchain paradigm to implement a data provenance system then a distributed and trusted data 
provenance system might be possible. 

— Distributed denial of service 

— Transaction malleability attacks 

—  Timejacking 

— Routing attacks 

— Sybil attacks 

— Eclipse attacks 

— Long range attacks on proof of stake networks 

— User wallet attacks 

— Selfish mining 

A separate routing attack attacks the database is also maintained to record all of these operations on a 
file object. A Blockchain transaction begins with two willing parties to a transaction. The payer’s equity stake, 
or coin, is recorded as a transaction in a chain of cryptographic blocks secured with his public key, a hash, and 
the private key of the person he bought his equity stake from and embedded in a “proof of work” block. There 
might be a silver lining if a framework is developed powered by techniques such as formal verification of 
code like the one privacy uses in its system as mentioned in [42]. The split in Bitcoin that resulted in new 
currency system called Bitcoin Cash was the result of a heated debate to address the scalability issue. An auditor 
is then provided with a blockchain receipt containing the information of block number and a transaction ID that 
tracks a certain set of operations that the auditor is interested in. Since Sybil attacks the block that is mined 
using a distributed consensus protocol a user does not have to trust a third party for the integrity of blockchain 
data. Figure 9 shows the encryption is done with digital signature using secure private key [42]. 

Paper intends to study its extension to multiple security providers with different applications in 
combination with the data ownership use case as discussed in the last section to study the overall 
ownership/privacy preserving auditable system as mentioned in [43]. Besides this digital signature algorithm 
to block the attacks are malicious types of attacks on blockchain network that studies the verifiable cloud 
computing using smart contracts in blockchain networks. These types of attacks make use of game theoretic 
techniques to study the aspect of collusion between two cloud providers for a same computation task. When 
both the providers return result a cross check can establish the existence or absence of collusion between them. 
Studying how efficient, in terms of overhead, it is to implement these systems alongside simple cloud storage 
and computing. Figure 10 shows the decryption is done with digital signature using secure public key [42]. 


Ae a & 


Figure 9. The encryption is done with digital Figure 10. The decryption is done with digital 
signature using secure private key signature using secure public key 


» 


2.10. Proof-of-Work (PoW) algorithm 

This PoW algorithm portion of the framework manages the protocols and decisions related to the 
underlying blockchain security system. These could include the block size or which consensus protocol to use. 
An informed decision could be made by a policy-making body in an iterative manner. Each iteration can 
consider the feedback from the underlying blockchain network as given in [44]. This feedback can be in the 
form of smart contract execution data stored on blockchain. This can lead to a more systematic approach of 
development i.e., a system prototype that can be tested and improved in an iterative manner, like described 
above, before deploying it into the real world. Figure 11 shows the topologies of proof of work algorithm [44]. 
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Figure 11. The topologies of proof of work algorithm 


The PoW cryptography in blockchain is envisioned by encryption/decryption the sequences, this 
cryptography technique can be implemented to attach certain guarantees to the smart contract code developed 
after the deliberation on human-policy making level. The main aim of cryptography is to decouple, as much 
as possible, the human logic and decision making to its implementation in the form of smart contract code as 
given in [45]. The purpose is to make the code development as trustworthy as possible while mostly holding 
the actual human thinking accountable. 


3. BLOCKCHAIN TECHNOLOGY 

One of Blockchain’s core strengths is its ability to allow for a verifiable transaction to take place 
without the need for central database or oversight authority. Traditional transactions require a central 
authority overseeing or simply recording the transaction to prevent fraud and to provide a verifiable record of 
has transpired as mentioned in [46]. Blockchain supplants this requirement with “cryptographic proof instead 
of trust, allowing any two willing parties to transact directly with each other without the need for a trusted 
third party”. The consequences of this breakthrough are hard to overstate. A Blockchain transaction begins 
with two willing parties to a transaction. The payer’s equity stake, or coin, is recorded as a transaction in a 
chain of cryptographic blocks secured with his public key, a hash, and the private key of the person he 
bought his equity stake from and embedded in a “proof of work” block. The payer then digitally signs a hash 
of this prior transaction and the public key of the next owner with his private key and then adds this to the 
end of the coin as mentioned in [47]. The payee can then verify the signatures to verify the chain of 
ownership. However, since each block is deterministic and unwavering, block ciphers are susceptible to an 
exploit called differential cryptanalysis in which output blocks are scanned for evidence of non-random 
behavior caused by some repeating value in the plaintext, and that information is used to reverse engineer the 
encryption keys. This one-way cryptographic hash is computationally impractical to reverse, and thus this 
interaction secures the ownership chain; however, it doesn’t provide a means to prevent a bad actor from 
duplicating (double spending) or reversing a transaction. Table 1 shows the comparison of blockchain usage 
with different prescribed algorithms. 


Table 1. The comparison of blockchain usage with different prescribed algorithms 


Articles Purpose Algorithm 
[48] Cross-border payments DES 
[49] NFT marketplaces PoW 
[50] Secure sharing of medical data RSA 
[51] Personal identity security SHA-256 


4. CONCLUSION 

The world is fast approaching a time as a society in which ownership of an asset like a bicycle or a 
car, or any other type of asset need not be represented by a signed piece of paper which can be lost stolen or 
forged. Ownership can be represented as a digital asset in an immutable cryptographically secured database 
in much more secure and verifiable manner than traditional means. Our team has prepared a demonstration of 
a simple blockchain network hosted in the world. In this demonstration we take some liberties and we do not 
follow the best practice of diversifying the nodes as they are all going to be hosted on the same provider, 
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and obviously controlled by the same users, us. However, these are reasonable simplifications for a 
development or demonstration environment. This paper assignment is intended to describe the blockchain 
algorithm with the prerequisite knowledge of the field and the use cases for securing the blockchain. This paper 
extensively looked at different use cases of data ownership and provenance with security. Studying the 
implications that may arise after blockchain in implemented for a particular use case. Other purpose is to 
compare the exiting state-of-the-art techniques that try to solve the issues such as scalability, regulation and data 
ownership and provenance in blockchain-based ecosystems. The work to write a paper based on this plan is 
already underway. As a result, the whole community was not taken on board during such events thus breaching 
the original idea of immutability and decentralization of the blockchain technology. If, however, an efficient 
hashing and transaction framework was existed to tackle this type of situation then such a split could have been 
avoided. This motivates me to study the aspect of governance by the blockchain in a more systematic manner. 
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